Hanzo
PlatformHanzo IAMIntegrationsGo

Bytebase

Use Hanzo IAM as the OAuth2/OIDC provider for Bytebase SSO.

This guide configures Bytebase to sign in via Hanzo IAM using OAuth2/OIDC.

Variables: IAM_HOSTNAME — Hanzo IAM server URL (e.g. http://localhost:8000). Bytebase_HOSTNAME — Bytebase server URL.

Step 1: Deploy Hanzo IAM and Bytebase

Deploy Hanzo IAM and Bytebase. Ensure both are running and you can sign in to Hanzo IAM. For production, see production mode.

Step 2: Configure Hanzo IAM application

  1. Create or open a Hanzo IAM application.
  2. Add redirect URL: <IAM_HOSTNAME>/callback (e.g. http://localhost:8000/callback). Note Client ID and Client secret for Bytebase.

Redirect

OIDC discovery: http://<IAM_HOSTNAME>/.well-known/openid-configuration

Step 3: Configure Bytebase

  1. In Bytebase open SSO and choose OAuth 2.0.
  2. Enter Hanzo IAM Client ID and Client secret. Set URLs:
    • Token server URL: http://<IAM_HOSTNAME>/oauth/token
    • Authorization server URL: http://<IAM_HOSTNAME>/oauth/authorize
    • User Info server URL: http://<IAM_HOSTNAME>/api/get-account
    • Scopes: address phone openid profile offline_access email

Find SSO Configure

Sign out of Bytebase and test SSO login. Login

How is this guide?

Last updated on

Traefik

Protect services behind Traefik with Hanzo IAM auth (SSO).

BookStack

Using Hanzo IAM for authentication in BookStack

On this page

Step 1: Deploy Hanzo IAM and Bytebase
Step 2: Configure Hanzo IAM application
Step 3: Configure Bytebase